Mario Gilera
26-08-2006, 20:51
Allego un pezzetto di log...
[26/Aug/2006 20:13:19] DROP "WAN>FW" packet from WAN, proto:UDP, len:134, ip/port:85.60.44.145:52228 -> 172.19.255.254:17484, udplen:106
[26/Aug/2006 20:13:46] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:13:51] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.184.82.202:2348 -> 172.19.255.254:22895, flags: SYN , seq:320233391 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:13:51] DROP "WAN>FW" packet from WAN, proto:UDP, len:47, ip/port:81.184.82.202:47722 -> 172.19.255.254:22895, udplen:19
[26/Aug/2006 20:13:54] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.184.82.202:2348 -> 172.19.255.254:22895, flags: SYN , seq:320233391 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:14:00] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.184.82.202:2348 -> 172.19.255.254:22895, flags: SYN , seq:320233391 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:17:08] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:17:21] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:70.71.231.101:60889 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:17:28] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:193.11.216.135:33736 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:18:11] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:219.137.66.225:9237 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:18:43] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:222.159.57.169:15301 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:18:57] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:19:26] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:221.201.25.174:11041 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:20:26] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:61.131.114.93:22364 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:21:47] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:59.149.209.182:22860 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:23:19] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:24:15] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:218.79.59.169:44356 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:25:25] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:222.84.77.56:20156 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:25:25] DROP "WAN>FW" packet from WAN, proto:UDP, len:134, ip/port:82.83.61.208:6969 -> 172.19.255.254:17484, udplen:106
[26/Aug/2006 20:26:24] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:85.198.224.114:22418 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:26:43] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:220.239.67.28:15144 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:26:45] DROP "WAN>FW" packet from WAN, proto:TCP, len:44, ip/port:213.120.107.48:4496 -> 172.19.255.254:4899, flags: SYN , seq:2112582103 ack:0, win:8192, tcplen:0
[26/Aug/2006 20:27:03] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:221.126.254.122:27634 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:27:13] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:28:21] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:220.115.9.94:21241 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:28:52] DROP "WAN>FW" packet from WAN, proto:UDP, len:125, ip/port:85.178.158.225:33200 -> 172.19.255.254:17484, udplen:97
[26/Aug/2006 20:29:21] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:29:31] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:61.31.131.70:26991 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:29:37] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:61.31.131.70:26991 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:30:28] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:220.172.175.142:17805 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:30:45] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.86.123.203:4422 -> 172.19.255.254:17484, flags: SYN , seq:1912537190 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:30:54] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.86.123.203:4422 -> 172.19.255.254:17484, flags: SYN , seq:1912537190 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:31:25] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:219.130.252.240:11141 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:32:37] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:70.48.149.104:60974 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:33:53] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:34:59] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:58.9.39.22:18875 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:36:18] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:36:45] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:69.137.222.119:56237 -> 172.19.255.254:17484, flags: SYN , seq:506497544 ack:0, win:65535, tcplen:0
[26/Aug/2006 20:36:49] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:69.137.222.119:56237 -> 172.19.255.254:17484, flags: SYN , seq:506497544 ack:0, win:65535, tcplen:0
[26/Aug/2006 20:36:54] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:69.137.222.119:56237 -> 172.19.255.254:17484, flags: SYN , seq:506497544 ack:0, win:65535, tcplen:0
[26/Aug/2006 20:37:19] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:70.71.231.101:60889 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:37:25] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:193.11.216.135:33736 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:38:24] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:80.102.167.244:14800 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:38:42] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:222.159.57.169:15301 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:39:45] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:221.201.25.174:11041 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:40:23] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:61.131.114.93:22364 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:41:46] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:59.149.209.182:22860 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:45:12] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:45:19] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:222.84.77.56:20156 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:46:27] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:85.198.224.114:22418 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:46:44] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:220.239.67.28:15144 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:47:29] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:202.100.62.222:12512 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:47:58] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
ne ho paginate piene di tentativi di accesso alla mia 17484udp. l'ip 172.19.255.254 subisce il redirect di tutto il traffico da internet (regola sul router).
Che puņ essere?
TIA
Mario
[26/Aug/2006 20:13:19] DROP "WAN>FW" packet from WAN, proto:UDP, len:134, ip/port:85.60.44.145:52228 -> 172.19.255.254:17484, udplen:106
[26/Aug/2006 20:13:46] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:13:51] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.184.82.202:2348 -> 172.19.255.254:22895, flags: SYN , seq:320233391 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:13:51] DROP "WAN>FW" packet from WAN, proto:UDP, len:47, ip/port:81.184.82.202:47722 -> 172.19.255.254:22895, udplen:19
[26/Aug/2006 20:13:54] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.184.82.202:2348 -> 172.19.255.254:22895, flags: SYN , seq:320233391 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:14:00] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.184.82.202:2348 -> 172.19.255.254:22895, flags: SYN , seq:320233391 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:17:08] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:17:21] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:70.71.231.101:60889 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:17:28] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:193.11.216.135:33736 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:18:11] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:219.137.66.225:9237 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:18:43] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:222.159.57.169:15301 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:18:57] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:19:26] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:221.201.25.174:11041 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:20:26] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:61.131.114.93:22364 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:21:47] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:59.149.209.182:22860 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:23:19] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:24:15] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:218.79.59.169:44356 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:25:25] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:222.84.77.56:20156 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:25:25] DROP "WAN>FW" packet from WAN, proto:UDP, len:134, ip/port:82.83.61.208:6969 -> 172.19.255.254:17484, udplen:106
[26/Aug/2006 20:26:24] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:85.198.224.114:22418 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:26:43] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:220.239.67.28:15144 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:26:45] DROP "WAN>FW" packet from WAN, proto:TCP, len:44, ip/port:213.120.107.48:4496 -> 172.19.255.254:4899, flags: SYN , seq:2112582103 ack:0, win:8192, tcplen:0
[26/Aug/2006 20:27:03] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:221.126.254.122:27634 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:27:13] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:28:21] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:220.115.9.94:21241 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:28:52] DROP "WAN>FW" packet from WAN, proto:UDP, len:125, ip/port:85.178.158.225:33200 -> 172.19.255.254:17484, udplen:97
[26/Aug/2006 20:29:21] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:29:31] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:61.31.131.70:26991 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:29:37] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:61.31.131.70:26991 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:30:28] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:220.172.175.142:17805 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:30:45] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.86.123.203:4422 -> 172.19.255.254:17484, flags: SYN , seq:1912537190 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:30:54] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:81.86.123.203:4422 -> 172.19.255.254:17484, flags: SYN , seq:1912537190 ack:0, win:64240, tcplen:0
[26/Aug/2006 20:31:25] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:219.130.252.240:11141 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:32:37] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:70.48.149.104:60974 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:33:53] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:34:59] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:58.9.39.22:18875 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:36:18] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:36:45] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:69.137.222.119:56237 -> 172.19.255.254:17484, flags: SYN , seq:506497544 ack:0, win:65535, tcplen:0
[26/Aug/2006 20:36:49] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:69.137.222.119:56237 -> 172.19.255.254:17484, flags: SYN , seq:506497544 ack:0, win:65535, tcplen:0
[26/Aug/2006 20:36:54] DROP "WAN>FW" packet from WAN, proto:TCP, len:48, ip/port:69.137.222.119:56237 -> 172.19.255.254:17484, flags: SYN , seq:506497544 ack:0, win:65535, tcplen:0
[26/Aug/2006 20:37:19] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:70.71.231.101:60889 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:37:25] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:193.11.216.135:33736 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:38:24] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:80.102.167.244:14800 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:38:42] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:222.159.57.169:15301 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:39:45] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:221.201.25.174:11041 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:40:23] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:61.131.114.93:22364 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:41:46] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:59.149.209.182:22860 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:45:12] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
[26/Aug/2006 20:45:19] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:222.84.77.56:20156 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:46:27] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:85.198.224.114:22418 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:46:44] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:220.239.67.28:15144 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:47:29] DROP "WAN>FW" packet from WAN, proto:UDP, len:90, ip/port:202.100.62.222:12512 -> 172.19.255.254:17484, udplen:62
[26/Aug/2006 20:47:58] DROP "WAN>FW" packet from WAN, proto:UDP, len:126, ip/port:219.136.172.212:1501 -> 172.19.255.254:17484, udplen:98
ne ho paginate piene di tentativi di accesso alla mia 17484udp. l'ip 172.19.255.254 subisce il redirect di tutto il traffico da internet (regola sul router).
Che puņ essere?
TIA
Mario